libgd2 2.2.5-4ubuntu0.4 source package in Ubuntu
Changelog
libgd2 (2.2.5-4ubuntu0.4) bionic-security; urgency=medium
* SECURITY UPDATE: NULL pointer dereference in gdImageClone allows attackers
to crash an application via a specific function call sequence
- debian/patches/CVE-2018-14553.patch: remove manual style copy from
src/gd.c and appropriately set stylePos in tests/gdimageclone/style.c.
- CVE-2018-14553
* SECURITY UPDATE: possible read of uninitialized variable in
gdImageCreateFromXbm()
- debian/patches/CVE-2019-11038.patch: error out if sscanf() doesn't receive
input in src/gd_xbm.c.
- debian/patches/CVE-2019-11038-test.patch: add a test for
CVE-2019-11038.patch
- CVE-2019-11038
-- Avital Ostromich <email address hidden> Mon, 09 Mar 2020 14:43:33 -0400
Upload details
- Uploaded by:
- Avital Ostromich
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- graphics
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libgd2_2.2.5.orig.tar.gz | 3.2 MiB | 150e6952af874bbccb33cf0f87288b41a8fd54f0ce4cff914ef90a80ef9d0162 |
| libgd2_2.2.5-4ubuntu0.4.debian.tar.xz | 36.6 KiB | 0640e355dbed42866d59e8ae392ef28817deafceea77aa1ce125c1b60077713b |
| libgd2_2.2.5-4ubuntu0.4.dsc | 2.1 KiB | e5db2778b9fbc7e5ee9f8bfa0dea5c5f5b7968683c4735e3c24620aa261d9fd3 |
Available diffs
Binary packages built by this source
- libgd-dev: GD Graphics Library (development version)
GD is a graphics library. It allows your code to quickly draw images
complete with lines, arcs, text, multiple colours, cut and paste from
other images, flood fills, and write out the result as a PNG file.
This is particularly useful in World Wide Web applications, where PNG is
one of the formats accepted for inline images by most browsers.
.
This is the full development version of the library.
- libgd-tools: GD command line tools and example code
GD is a graphics library. It allows your code to quickly draw images
complete with lines, arcs, text, multiple colours, cut and paste from
other images, flood fills, and write out the result as a PNG file.
This is particularly useful in World Wide Web applications, where PNG is
one of the formats accepted for inline images by most browsers.
.
This is some simple command line tools and example code that use the GD
graphics library.
- libgd-tools-dbgsym: debug symbols for libgd-tools
- libgd3: GD Graphics Library
GD is a graphics library. It allows your code to quickly draw images
complete with lines, arcs, text, multiple colours, cut and paste from
other images, flood fills, and write out the result as a PNG file.
This is particularly useful in World Wide Web applications, where PNG is
one of the formats accepted for inline images by most browsers.
.
This is the runtime package of the library.
- libgd3-dbgsym: debug symbols for libgd3
